CVE-2024-11706 Information

Nov 27, 2024 cve

Description

A null pointer dereference may have inadvertently occurred in pk12util and specifically in the SEC_ASN1DecodeItem_Util function when handling malformed or improperly formatted input files. This vulnerability affects Firefox < 133 and Thunderbird < 133.

Reference

https://bugzilla.mozilla.org/show_bug.cgi?id=1923767 https://www.mozilla.org/security/advisories/mfsa2024-63/ https://www.mozilla.org/security/advisories/mfsa2024-67/

Share on: